VYPR

Android

by Google

CVEs (4,715)

  • CVE-2022-20168HigJun 15, 2022
    risk 0.49cvss 7.5epss 0.00

    Product: AndroidVersions: Android kernelAndroid ID: A-210594998References: N/A

  • CVE-2022-20151HigJun 15, 2022
    risk 0.49cvss 7.5epss 0.00

    Product: AndroidVersions: Android kernelAndroid ID: A-210712565References: N/A

  • CVE-2021-39677HigFeb 11, 2022
    risk 0.49cvss 7.5epss 0.00

    In startVideoStream() there is a possibility of an OOB Read in the heap, when the camera buffer is ‘zero’ in size.Product: AndroidVersions: Android-11Android ID: A-205097028

  • CVE-2021-1022HigDec 15, 2021
    risk 0.49cvss 7.5epss 0.01

    In btif_in_hf_client_generic_evt of btif_hf_client.cc, there is a possible Bluetooth service crash due to a missing null check. This could lead to remote denial of service with no additional execution privileges needed. User interaction is not needed for exploitation.Product:…

  • CVE-2021-0925HigDec 15, 2021
    risk 0.49cvss 7.5epss 0.01

    In rw_t4t_sm_detect_ndef of rw_t4t.cc, there is a possible out of bounds read due to an incorrect bounds check. This could lead to remote information disclosure due to a limited change in behavior based on the out of bounds data with no additional execution privileges needed.…

  • CVE-2021-0555HigJun 22, 2021
    risk 0.49cvss 7.5epss 0.01

    In RenderStruct of protostream_objectsource.cc, there is a possible crash due to a missing null check. This could lead to remote denial of service with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions:…

  • CVE-2021-0517HigJun 21, 2021
    risk 0.49cvss 7.5epss 0.01

    In updateCapabilities of ConnectivityService.java, there is a possible incorrect network state determination due to a logic error in the code. This could lead to biasing of networking tasks to occur on non-VPN networks, which could lead to remote information disclosure, with no…

  • CVE-2021-0466HigJun 11, 2021
    risk 0.49cvss 7.5epss 0.01

    In startIpClient of ClientModeImpl.java, there is a possible identifier which could be used to track a device. This could lead to remote information disclosure to a proximal attacker, with no additional execution privileges needed. User interaction is not needed for…

  • CVE-2021-0431HigApr 13, 2021
    risk 0.49cvss 7.5epss 0.02

    In avrc_msg_cback of avrc_api.cc, there is a possible out of bounds read due to a missing bounds check. This could lead to remote information disclosure to a paired device with no additional execution privileges needed. User interaction is not needed for exploitation.Product:…

  • CVE-2021-0326HigFeb 10, 2021
    risk 0.49cvss 7.5epss 0.05

    In p2p_copy_client_info of p2p.c, there is a possible out of bounds write due to a missing bounds check. This could lead to remote code execution if the target device is performing a Wi-Fi Direct search, with no additional execution privileges needed. User interaction is not…

  • CVE-2020-27055HigDec 15, 2020
    risk 0.49cvss 7.5epss 0.01

    In isSubmittable and showWarningMessagesIfAppropriate of WifiConfigController.java and WifiConfigController2.java, there is a possible insecure WiFi configuration due to improper input validation. This could lead to remote information disclosure with no additional execution…

  • CVE-2020-27024HigDec 15, 2020
    risk 0.49cvss 7.5epss 0.01

    In smp_br_state_machine_event of smp_br_main.cc, there is a possible out of bounds read due to a missing bounds check. This could lead to remote information disclosure triggered by a malformed Bluetooth packet, with no additional execution privileges needed. User interaction is…

  • CVE-2020-0460HigDec 14, 2020
    risk 0.49cvss 7.5epss 0.01

    In createNameCredentialDialog of CertInstaller.java, there exists the possibility of improperly installed certificates due to a logic error. This could lead to remote information disclosure with no additional execution privileges needed. User interaction is not needed for…

  • CVE-2020-0442HigNov 10, 2020
    risk 0.49cvss 7.5epss 0.01

    In Message and toBundle of Notification.java, there is a possible UI slowdown or crash due to improper input validation. This could lead to remote denial of service if a malicious contact file is received, with no additional execution privileges needed. User interaction is not…

  • CVE-2020-0441HigNov 10, 2020
    risk 0.49cvss 7.5epss 0.01

    In Message and toBundle of Notification.java, there is a possible resource exhaustion due to improper input validation. This could lead to remote denial of service requiring a device reset to fix with no additional execution privileges needed. User interaction is not needed for…

  • CVE-2020-0413HigOct 14, 2020
    risk 0.49cvss 7.5epss 0.01

    In gatt_process_read_by_type_rsp of gatt_cl.cc, there is a possible out of bounds read due to a missing bounds check. This could lead to remote information disclosure in the Bluetooth server with no additional execution privileges needed. User interaction is not needed for…

  • CVE-2020-0377HigOct 14, 2020
    risk 0.49cvss 7.5epss 0.02

    In gatt_process_read_by_type_rsp of gatt_cl.cc, there is a possible out of bounds read due to a missing bounds check. This could lead to remote information disclosure in the Bluetooth server with no additional execution privileges needed. User interaction is not needed for…

  • CVE-2020-0300HigSep 18, 2020
    risk 0.49cvss 7.5epss 0.01

    In NFC, there is a possible out of bounds read due to uninitialized data. This could lead to remote information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-11Android ID: A-148736216

  • CVE-2020-0286HigSep 18, 2020
    risk 0.49cvss 7.5epss 0.01

    In Bluetooth AVRCP, there is a possible leak of audio metadata due to residual data. This could lead to remote information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-11Android ID:…

  • CVE-2020-0214HigJun 11, 2020
    risk 0.49cvss 7.5epss 0.01

    In ce_t4t_process_select_file_cmd of ce_t4t.cc, there is a possible out of bounds read due to an incorrect bounds check. This could lead to remote information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation.Product:…

Page 116 of 236